1Build the BearSSL library. 2.Pp 3BearSSL is a tiny SSL library suitable for embedded environments. 4For details see 5.Lk https://www.BearSSL.org/ 6.Pp 7This library is currently only used to perform 8signature verification and related operations 9for Verified Exec and 10.Xr loader 8 . 11.Pp 12Due to size constraints in the BIOS environment on x86, one may need to set 13.Va LOADERSIZE 14larger than the 15default 500000, although often loader is under the 500k limit even with 16this option. 17Setting 18.Va LOADERSIZE 19larger than 500000 may cause 20.Xr pxeboot 8 21to be too large to work. 22Careful testing of the loader in the target environment when built with a larger 23limit to establish safe limits is critical because different BIOS environments 24reserve differing amounts of the low 640k space, making a precise limit for 25everybody impossible. 26.Pp 27See also 28.Va WITH_LOADER_PXEBOOT 29for other considerations. 30